228 matches found
EUVD-2023-0536
Malicious code in bioql PyPI...
EUVD-2023-2681
Malicious code in bioql PyPI...
EUVD-2022-1227
Malicious code in bioql PyPI...
EUVD-2024-2583
Malicious code in bioql PyPI...
Malicious code in @sev-ui-verse/form-validators (npm)
The package @sev-ui-verse/form-validators was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e39d6023f97017127467f853ed7318cce2e7944403638addb101c98a68f52590 Any computer that has this package installed or running should be consider...
Malicious Package
Overview @sev-ui-verse/form-validators is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2025-47537 Malicious code in @sev-ui-verse/form-validators (npm)
The package @sev-ui-verse/form-validators was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e39d6023f97017127467f853ed7318cce2e7944403638addb101c98a68f52590 Any computer that has this package installed or running should be consider...
FALCON: Autonomous Cyber Threat Intelligence Mining with LLMs for IDS Rule Generation
Signature-based Intrusion Detection Systems IDS detect malicious activities by matching network or host activity against predefined rules. These rules are derived from extensive Cyber Threat Intelligence CTI, which includes attack signatures and behavioral patterns obtained through automated tool...
MAL-2025-17517 Malicious code in context-validators (npm)
The package context-validators was found to contain malicious code...
Malicious code in context-validators (npm)
The package context-validators was found to contain malicious code...
Willchain: Decentralized, Privacy-Preserving, Self-Executing, Digital Wills
This work presents a novel decentralized protocol for digital estate planning that integrates advances distributed computing, and cryptography. The original proof-of-concept was constructed using purely solidity contracts. Since then, we have enhanced the implementation into a layer-1 protocol th...
CVE-2023-30613
Kiwi TCMS, an open source test management system, allows users to upload attachments to test plans, test cases, etc. In versions of Kiwi TCMS prior to 12.2, there is no control over what kinds of files can be uploaded. Thus, a malicious actor may upload an .exe file or a file containing embedded...
CVE-2020-9296
Netflix Titus uses Java Bean Validation JSR 380 custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary data in the error message template being passe...
CVE-2020-9297
Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java Bean Validation JSR 380 custom constraint validators. When building custom constraint violation error messages, different types of interpolation are supported, including Java EL expressions. If an attacker can inject arbitrary...
Malicious code in web3-validators (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4268 Malicious code in web3-validators (PyPI)
--- -= Per source details. Do not edit below this line.=-...
CVE-2019-19588
The validators package 0.12.2 through 0.12.5 for Python enters an infinite loop when validators.domain is called with a crafted domain string. This is fixed in 0.12.6...
CVE-2018-25074
A vulnerability was found in Prestaul skeemas and classified as problematic. This issue affects some unknown processing of the file validators/base.js. The manipulation of the argument uri leads to inefficient regular expression complexity. The patch is named...
Redefining Hybrid Blockchains: a Balanced Architecture
Blockchain technology has completely revolutionized the field of decentralized finance with the emergence of a variety of cryptocurrencies and digital assets. However, widespread adoption of this technology by governments and enterprises has been limited by concerns regarding the technology's...
GHSA-6JRF-4JV4-R9MW tendermint-rs's Light Client Verifier allows malicious validators to spoof votes from other validators
Name: ISA-2025-003: Malicious validator can spoof votes from other validators Component: tendermint-rs Criticality: High Catastrophic Impact; Rare Likelihood per ACMv1.2 Affected versions: = v0.40.2 Affected users: Everyone Description tendermint-rs contains a critical vulnerability in its light...